Viewing by month: January 2007

Jan 26 2007

Use Your MySpace Password for MySpace Only

So for better or for worse a list of 56,000 usernames and passwords captured from a fake myspace login page (its called phishing) has been released.  Here is one link to this list.  I'd suggest checking it out and making sure that you are not on there.

http://archives.neohapsis.com/archives/fulldisclosure/2007-01/att-0270/myspace.txt

I won't go too far into the story since its fairly well covered.  Here is a link to a couple of stories about how it happened and even some interesting analysis of the passwords.

http://blog.washingtonpost.com/securityfix/2007/01/myspace_phishers_hook_hundreds.html

http://texturbation.com/blog/2007/01/15/56000-myspace-users-phished/

Remember these are people that are posting the passwords.  Its debatable whether this is a good or a bad thing, but one thing is for sure, the "real" bad guys aren't going to tell you about the data they have, and I guarantee they have a lot more about you than this.

I know its difficult to remember a lot of passwords.  I do have tips on ways to have many different passwords and remember them easily in my video about online security found here.

http://www.cheyennejack.com/dnn/home/Blog/tabid/117/EntryID/2/Default.aspx

If you don't have the time for all of that, I will make one small plea with you.  Most of you know to have different passwords for your financial accounts.  Great! I would add MySpace into this same category.   The password you use there should be different from any other site, mainly because MySpace is going to continually be hacked and the subject of these attacks.  If you do fall victim to one of these, you don't want the hackers to have your password to anything else, like your email account, where they can start to cause more damage, than just taking your MySpace account.

Use Your MySpace Password for MySpace Only.

1 comments - Posted by cheyennejack at 8:05 PM - Categories: Security | Social Media